$ rpki-client -vvf rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/AAFD824CBCFA11EDAD328D3AC4F9AE02.roa File: AAFD824CBCFA11EDAD328D3AC4F9AE02.roa (raw, json) Hash identifier: bAefQD+i2DUr5zX++CqMyYJLlTVBnnX0/82YDtmfqOM= Subject key identifier: 27:91:48:00:05:87:48:91:37:78:D4:A4:03:B8:3A:9C:AC:84:C0:E4 Certificate issuer: /CN=A9127FC2/serialNumber=73BA21BE36DDDFD58690116D6EEC7BDC7EFEFB28 Certificate serial: 02BD Authority key identifier: 73:BA:21:BE:36:DD:DF:D5:86:90:11:6D:6E:EC:7B:DC:7E:FE:FB:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/AAFD824CBCFA11EDAD328D3AC4F9AE02.roa Signing time: Sun 21 Apr 2024 03:45:29 +0000 ROA not before: Sun 21 Apr 2024 03:45:29 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 38439 IP address blocks: 2401:1740:800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/c7ohvjbd39WGkBFtbux73H7--yg.crl rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/c7ohvjbd39WGkBFtbux73H7--yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 701 (0x2bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127FC2/serialNumber=73BA21BE36DDDFD58690116D6EEC7BDC7EFEFB28 Validity Not Before: Apr 21 03:45:29 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66248bd9-af31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6b:04:7f:c9:1b:60:ae:e5:c7:68:b4:8f:93: 7f:a7:f4:b2:3e:53:03:31:41:b3:2a:35:b0:62:48: 34:c3:0a:61:ee:64:db:43:58:99:a9:4e:28:90:93: 11:19:da:bd:ea:d8:27:80:72:d4:1a:90:05:1f:93: 65:9e:7e:16:c0:dc:c8:75:c7:16:34:e2:57:62:22: 4d:1b:46:a6:1e:0f:75:fd:c8:93:0e:aa:0e:41:d2: 32:e2:a6:00:e9:51:38:07:a6:25:3d:77:ed:da:13: 40:0f:09:a0:cb:04:e4:d8:34:f7:fc:ad:4b:ff:c0: ca:0e:3e:0f:35:5e:3d:16:4a:b1:b1:db:a1:a2:f4: 83:15:b2:b3:5c:cb:ca:38:54:4d:cc:18:bf:20:eb: 8d:7e:17:aa:e6:08:9b:09:4f:15:9c:2f:ec:12:3f: 02:ec:b7:84:4c:79:19:a2:cf:4f:ae:43:1d:58:27: e1:6a:89:85:7f:99:79:c7:06:57:99:01:c4:76:a8: f8:77:56:3e:7e:38:49:7f:9d:33:8d:ff:6a:aa:db: 1d:d8:a1:52:a5:c8:42:f0:c3:31:63:6f:65:d6:c9: 04:8f:af:e7:5c:c0:d0:93:ca:fe:91:82:5e:60:46: a8:2c:55:d8:00:23:07:02:4f:be:21:77:a4:7f:62: 2b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:91:48:00:05:87:48:91:37:78:D4:A4:03:B8:3A:9C:AC:84:C0:E4 X509v3 Authority Key Identifier: keyid:73:BA:21:BE:36:DD:DF:D5:86:90:11:6D:6E:EC:7B:DC:7E:FE:FB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/c7ohvjbd39WGkBFtbux73H7--yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/AAFD824CBCFA11EDAD328D3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:1740:800::/48 Signature Algorithm: sha256WithRSAEncryption a4:bd:cd:60:bf:29:af:a6:76:0e:3f:5e:52:b5:d9:aa:8d:11: 32:83:8e:97:1b:75:e8:50:5e:ed:52:37:b4:35:7b:21:5b:b6: 74:df:a2:e2:0c:cb:cc:5f:82:2e:67:a3:d1:88:d2:b4:fb:04: be:a7:c7:d3:b8:f9:10:bd:c0:99:dc:05:f0:86:08:b7:6d:12: dc:97:04:eb:8b:d3:a2:60:8b:f6:b3:f0:39:6b:f3:2e:bb:e8: 15:70:9c:63:57:00:98:c8:66:e2:b8:29:ef:02:fd:ac:0f:6e: a4:86:b9:fe:18:f7:9e:76:6f:bc:13:64:5d:7e:4c:ac:59:3c: 60:55:26:2e:dd:4a:3e:61:5d:82:d3:f4:a1:f4:c9:fd:3b:06: be:7f:24:24:9a:ab:1b:bf:b8:97:47:3a:0c:4c:26:bd:fe:d9: b3:6c:10:ba:40:2a:b8:6b:99:f5:53:88:25:af:52:f2:a5:f5: 8c:49:d5:6d:f1:26:49:7d:3a:c8:1e:5f:cf:04:45:35:da:53: cc:6b:1a:be:1d:d3:44:a3:44:1e:af:31:27:5d:ff:3f:9a:6a: 65:da:61:25:91:9f:31:b6:fa:77:87:75:bc:bc:ef:34:06:38: 88:90:08:cf:da:9b:5d:42:e8:d5:d1:4b:0a:c9:f7:ae:e4:2c: 89:1b:6e:dd -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdGQzIxMTAvBgNVBAUTKDczQkEyMUJFMzZERERGRDU4NjkwMTE2RDZFRUM3QkRD N0VGRUZCMjgwHhcNMjQwNDIxMDM0NTI5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI0OGJkOS1hZjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4WsEf8kbYK7lx2i0j5N/p/SyPlMDMUGzKjWwYkg0wwph7mTbQ1iZqU4okJMR Gdq96tgngHLUGpAFH5Nlnn4WwNzIdccWNOJXYiJNG0amHg91/ciTDqoOQdIy4qYA 6VE4B6YlPXft2hNADwmgywTk2DT3/K1L/8DKDj4PNV49FkqxsduhovSDFbKzXMvK OFRNzBi/IOuNfheq5gibCU8VnC/sEj8C7LeETHkZos9PrkMdWCfhaomFf5l5xwZX mQHEdqj4d1Y+fjhJf50zjf9qqtsd2KFSpchC8MMxY29l1skEj6/nXMDQk8r+kYJe YEaoLFXYACMHAk++IXekf2IrpwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCeRSAAF h0iRN3jUpAO4OpyshMDkMB8GA1UdIwQYMBaAFHO6Ib423d/VhpARbW7se9x+/vso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0ZDMi81RTMwQkY3MEJC QTYxMUVDQkFGNDMxNTZDNEY5QUUwMi9jN29odmpiZDM5V0drQkZ0YnV4NzNINy0t eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M3b2h2amJkMzlXR2tCRnRidXg3M0g3LS15Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdGQzIvNUUzMEJGNzBCQkE2MTFFQ0JBRjQzMTU2QzRGOUFFMDIvQUFGRDgyNENC Q0ZBMTFFREFEMzI4RDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkARdACAAwDQYJKoZIhvcNAQELBQADggEBAKS9zWC/Ka+m dg4/XlK12aqNETKDjpcbdehQXu1SN7Q1eyFbtnTfouIMy8xfgi5no9GI0rT7BL6n x9O4+RC9wJncBfCGCLdtEtyXBOuL06Jgi/az8Dlr8y676BVwnGNXAJjIZuK4Ke8C /awPbqSGuf4Y9552b7wTZF1+TKxZPGBVJi7dSj5hXYLT9KH0yf07Br5/JCSaqxu/ uJdHOgxMJr3+2bNsELpAKrhrmfVTiCWvUvKl9YxJ1W3xJkl9OsgeX88ERTXaU8xr Gr4d00SjRB6vMSdd/z+aamXaYSWRnzG2+neHdby87zQGOIiQCM/am11C6NXRSwrJ 967kLIkbbt0= -----END CERTIFICATE-----Generated at Sun May 19 04:20:42 2024 by rpki-client on console-ams.rpki-client.org